DHL Delivery Report·PDF[.]scr[.]exe | Triage

Sharing

General

Target

DHL Delivery Report·PDF.scr.exe
Size

2.6MB
MD5

fb9f3eb16de0b085e745a9e98d8e05be
SHA1

691c8b593919359517c042ec8d54f92c816bca88
SHA256

413252bf1fb09a2b8d3fc1342c93fd63049b74cc651fa06630289e7c07e8a084
SHA512

7dc615bf17d6a59c121e6ccd3f2d51fa624f760056b949efd5bb801e570cd38ff6002853eb86c23cba81dc3a09e2c69f947759537d725220699554184a169ca8
SSDEEP

49152:7vcXEh5t9aPOBEVqEtKN0GXKq3cr/iIOLBbHJdcD4w8k:GEzt9aPO+oXtcr/iISrcD4w8k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DHL Delivery Report·PDF.scr.exe

Files

DHL Delivery Report·PDF.scr.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 327KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ